awspx
awspx copied to clipboard
WithSecureLabs
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
awspx is failing to save the ingested data. I think I've narrowed the issue down to something related to the IAM service ingestion. This works: `awspx ingest --skip-attacks-all --services S3...
Hello, I noticed that creating a new profile and adding the access key, secret key, region and output format is not enough to get awspx to work in AWS GovCloud....
Hi, thank you for the awesome tool. often admins information provided in the form of json, through the "aws iam get-account-authorization-details > output.json" is it possible for ingestor to work...
Hi, Could you provide a Docker image for arm64 that would work on newer Apple M1 chips please? It seems like the image available is amd64 and I'm not able...
Hi, I am assessing an AWS account with the following command `sudo awspx ingest --services IAM` ``` INFO Searching for attack (03/21): AssumeRole (iteration: 1 of max: 5) DEBUG [REDACTED]...
Missing the iam sub-command before create-policy-version. I spot checked the rest in source and this looks like the only one missing it. ``` aws create-policy-version \ --policy-arn ... ```
If i am not mistaken, ASWPX takes a policy-centric approach to evaluating privesc paths as opposed to a principal-centric approach?. Is that right? For example, I have a role that...
Is it possible to visualize data that was ingested from multiple AWS accounts that have connections?
Hi, Im trying to visualize data that was ingested from multiple AWS accounts, with the same profile (using AssumeRole). Unfortunately, it is only possible to load and visualize one DB...
``` $ aws-vault exec my-account $ aws sts get-caller-identity # works $ awspx ingest [16/02/23 15:36:14] NOTICE The profile 'default' doesn't exist. Please enter your AWS credentials. (this information will...
Metadata
Owner
Metadata
A graph-based tool for visualizing effective access and resource relationships in AWS environments.